Privacy Policy for cone-ing.com
1. Introduction
At cone-ing.com (“we”, “us”, or “our”), we are dedicated to safeguarding your personal information and upholding your rights to data protection and privacy. This Privacy Policy outlines how we collect, use, disclose, and protect your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act of 2018 (“CCPA”), as amended.
By accessing or using cone-ing.com, you acknowledge and agree to the practices described in this Privacy Policy. We encourage you to read this policy thoroughly to understand your rights and our responsibilities.
2. Scope and Data Controller
This Privacy Policy applies to all personal data collected through our website at cone-ing.com and related services. For the purposes of applicable data protection law, cone-ing.com is the “data controller” with respect to the processing of your personal information.
If you have any questions about this policy or your personal data, you may contact us at [email protected].
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a) Usage Data
We collect information about your interactions with cone-ing.com, such as access times, viewed pages, referring website addresses, IP addresses, browser types and versions, language settings, session durations, and log data. This data helps us understand site activity and improve our services.
b) Account Data
When you create an account, we may collect your full name, email address, phone number, billing and shipping address, and other contact details necessary for account management.
c) Profile Data
Profile Data includes your preferences, purchase history, behavior on the website, saved items, and responses to surveys or promotional campaigns. This data enables us to personalize your experience.
d) Communication Data
If you contact us (via email at [email protected] or other means), we may collect your communication history, details from support requests, inquiries, or complaints for customer service and follow-up.
e) Technical Data
We collect technical information about the device and systems you use to access cone-ing.com, such as device identifiers, operating systems, browser configurations, and language settings. This enables us to ensure compatibility and performance across devices.
f) Transaction Data
We collect information related to purchases and transactions, including payment method details (processed via third-party payment processors), products ordered, shipping addresses, and order status.
g) Preference Data
We retain your consent preferences for marketing communications, notification settings, opt-out selections, and interests in particular products or services for personalization and regulatory compliance.
4. Legal Bases for Processing
We only process personal data when there is a lawful basis under the GDPR and other applicable laws, including:
– Consent: When you voluntarily provide information for specific purposes, such as subscribing to newsletters or accepting cookies.
– Contractual Necessity: To fulfill our obligations under a contract, such as processing purchases or account management.
– Legal Obligation: To comply with legal and regulatory obligations, such as tax reporting or fraud prevention.
– Legitimate Interests: Where necessary for our legitimate business interests, provided they are not overridden by your data protection rights (e.g., website analytics, service improvement).
5. Your Rights
In accordance with Applicable Law, you have the following rights regarding your personal data:
– Right of Access: You may request a copy of your personal data and information about how it is processed.
– Right to Rectification: You may request corrections to any inaccurate or incomplete data we hold.
– Right to Erasure: You may request the deletion of your personal data, subject to certain legal limitations.
– Right to Restriction: You may request that we limit the processing of your data, under specific circumstances.
– Right to Data Portability: You have the right to receive your data in a structured, machine-readable format and to transmit it to another controller.
– Right to Object: You may object to processing based on our legitimate interests, particularly with regard to direct marketing.
To exercise your rights, please contact us at [email protected]. We may need to verify your identity before processing your request.
California residents: Under the CCPA, you also have the right to know what personal information we collect, the right to opt out of sales of personal data (if applicable), and the right to non-discrimination for exercising these rights.
6. Security Measures
We implement robust administrative, technical, and physical safeguards to protect your personal data. These measures include:
– Encryption of data in transit and at rest where appropriate
– Role-based access control and authentication protocols
– Regular security training for all staff
– Scheduled backups and secure hosting practices
Despite these measures, no method of transmission or storage is completely secure. We cannot guarantee absolute security but remain committed to minimizing risks to the greatest extent possible.
7. International Data Transfers
If we transfer personal information outside of the European Economic Area (EEA) or California, we ensure appropriate safeguards are in place, such as:
– Standard Contractual Clauses approved by the European Commission
– Certification under privacy frameworks recognized by law
– Transfer mechanisms compliant with GDPR Article 46 and similar standards
We ensure that any third-party service providers receiving data maintain equivalent levels of data protection as required by GDPR and CCPA.
8. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected, or as required by law. General retention periods include:
– Account and Transaction Data: up to 7 years for legal and tax compliance
– Profile and Preference Data: retained until account deletion or withdrawal of consent
– Communication Data: up to 3 years following last contact
– Usage and Technical Data: anonymized and retained as long as needed for analytics
Once data is no longer required, it is securely deleted or anonymized.
9. Cookie Policy
cone-ing.com uses cookies and similar tracking technologies to enhance your experience. These include:
– Essential Cookies: Required for the site to function properly (e.g., login authentication, shopping cart)
– Functional Cookies: Enable personalization features and user preferences
– Analytics Cookies: Help us understand how users interact with the site (e.g., Google Analytics)
– Performance Cookies: Measure load times and page responsiveness to improve performance
Third-party services may also place cookies on your device. To learn more, review the cookie section of your browser or device settings.
10. Cookie Management & Compliance
In compliance with GDPR and CCPA, we offer you the ability to manage your cookie preferences via a consent banner or control panel available upon first visit and accessible in the footer.
You may also adjust or withdraw your consent at any time. You can configure your browser to block non-essential cookies; however, certain features of cone-ing.com may not function correctly as a result.
California residents may opt out of certain data disclosures, as defined by the CCPA, through Do Not Sell My Info links or by emailing [email protected].
11. Protection of Children
cone-ing.com does not knowingly collect or solicit personal data from children under the age of 13. If we learn that a child under 13 has provided us with personal data without verifiable parental consent, we will promptly delete such data. Parents or guardians who believe their child may have submitted data should contact us at [email protected].
12. Policy Updates
This Privacy Policy may be revised periodically to comply with legal, operational, or technological changes. Material changes will be communicated to users via the website or through direct communication. Continued use of the website after updates signifies acceptance of the revised policy.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, you may contact us at:
Email: [email protected]
We are committed to resolving data privacy issues promptly and in accordance with applicable regulations.
—
cone-ing.com is committed to full compliance with global privacy standards, including GDPR and CCPA. We encourage all users to contact us directly at [email protected] with any data protection questions, concerns, or access requests.